Skip to Main content Skip to Navigation
Conference papers

Optimal Constructions for Chain-Based Cryptographic Enforcement of Information Flow Policies

Abstract : The simple security property in an information flow policy can be enforced by encrypting data objects and distributing an appropriate secret to each user. A user derives a suitable decryption key from the secret and publicly available information. A chain-based enforcement scheme provides an alternative method of cryptographic enforcement that does not require any public information, the trade-off being that a user may require more than one secret. For a given information flow policy, there will be many different possible chain-based enforcement schemes. In this paper, we provide a polynomial-time algorithm for selecting a chain-based scheme which uses the minimum possible number of secrets. We also compute the number of secrets that will be required and establish an upper bound on the number of secrets required by any user.
Document type :
Conference papers
Complete list of metadata

Cited literature [17 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, March 28, 2018 - 3:58:17 PM
Last modification on : Tuesday, July 13, 2021 - 4:12:02 PM
Long-term archiving on: : Thursday, September 13, 2018 - 11:50:09 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Jason Crampton, Naomi Farley, Gregory Gutin, Mark Jones. Optimal Constructions for Chain-Based Cryptographic Enforcement of Information Flow Policies. 29th IFIP Annual Conference on Data and Applications Security and Privacy (DBSEC), Jul 2015, Fairfax, VA, United States. pp.330-345, ⟨10.1007/978-3-319-20810-7_23⟩. ⟨hal-01745832⟩



Record views


Files downloads